Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa
File: 3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa (raw, json)
Hash identifier: +h2OIV45k9IMNmhDrlIF5o27fKX07HhXCAJxexuPVfw=
Subject key identifier: 5D:6B:23:5A:51:EA:3D:E6:B2:01:0E:7B:0D:C1:1E:52:0F:1D:A0:D4
Certificate issuer: /CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F
Certificate serial: 3588D86D1D2A30BEA5A1990CF9B722C1063082D5
Authority key identifier: 8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa
Signing time: Tue 24 Sep 2024 02:00:01 +0000
ROA not before: Tue 24 Sep 2024 01:55:01 +0000
ROA not after: Tue 23 Sep 2025 02:00:01 +0000
asID: 131745
IP address blocks: 210.247.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:88:d8:6d:1d:2a:30:be:a5:a1:99:0c:f9:b7:22:c1:06:30:82:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F
Validity
Not Before: Sep 24 01:55:01 2024 GMT
Not After : Sep 23 02:00:01 2025 GMT
Subject: CN=5D6B235A51EA3DE6B2010E7B0DC11E520F1DA0D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:17:88:f7:56:1d:05:52:64:ba:4a:0d:ff:61:
ec:ef:79:04:5a:51:dc:bc:11:58:42:8e:4f:54:81:
9f:cc:43:6a:6d:25:1a:df:7e:10:7c:e0:7c:4f:c3:
4c:f1:e4:0b:8f:8d:86:23:35:ca:fd:40:44:9c:eb:
f1:e7:51:b0:0e:18:b1:f1:84:4b:ec:1a:7f:4a:d6:
b4:7c:74:52:1a:1a:93:2b:e7:bc:76:74:d0:0b:d8:
c2:c9:86:d2:5e:c3:e1:cd:e8:d2:b6:9c:33:09:c4:
4b:28:e4:63:9f:c3:bd:9b:4d:b6:80:61:b2:79:96:
7b:bb:b0:27:f9:26:d4:a6:2b:48:3c:c5:df:cc:f9:
5c:6c:bc:2b:6b:15:3b:6b:90:9d:97:76:6c:56:fb:
41:6d:9c:73:d2:b1:38:f0:a7:22:d7:03:d6:53:cc:
a3:98:17:b3:bf:ae:9d:c5:6f:17:76:7d:a2:5f:86:
63:a3:34:dd:fb:0c:3b:b9:72:fa:8e:e2:d5:44:9d:
96:51:86:67:26:32:2a:f8:f5:06:79:1e:48:9d:02:
e3:3f:aa:a7:6e:ae:bb:8f:de:ee:0c:e2:17:4b:f3:
46:80:f1:88:4f:92:5b:70:51:73:86:b4:fe:4a:47:
21:be:f7:42:67:9a:f7:5e:74:61:59:4a:06:5f:57:
24:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6B:23:5A:51:EA:3D:E6:B2:01:0E:7B:0D:C1:1E:52:0F:1D:A0:D4
X509v3 Authority Key Identifier:
keyid:8A:FE:BB:51:D0:0C:8E:06:AA:EA:84:2E:0C:0C:FF:C2:CA:B9:61:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8AFEBB51D00C8E06AAEA842E0C0CFFC2CAB9610F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96124329-ec20-4460-ac31-9c36cf94f3fb/0/3231302e3234372e3235322e302f32342d3234203d3e20313331373435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.247.252.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:6b:18:df:55:7f:e4:a1:ce:dd:99:d7:86:65:87:2d:c5:b1:
6c:25:ce:bc:fd:68:5f:17:7c:bb:f3:a0:66:4c:74:2a:c8:37:
17:68:98:8a:43:dd:ad:6d:52:99:e4:52:8a:88:dc:87:ff:09:
ca:5c:63:97:90:b0:2a:ea:49:5d:f0:9b:ea:37:20:4b:c3:c4:
c2:24:89:bf:c1:3b:f2:d2:9b:de:98:62:91:02:5b:99:67:e5:
13:a2:ef:ec:75:45:f4:f4:4e:9c:f3:95:19:f1:a1:0b:2e:b0:
5a:42:97:a6:f9:14:95:a7:02:be:bf:07:ee:ac:92:f5:39:6a:
1c:0f:9f:b8:32:23:8b:9c:13:88:08:00:15:f9:1a:10:31:28:
a5:e5:18:97:c5:6a:34:ce:69:c3:30:6e:0f:64:d1:42:4e:a1:
0f:2b:b3:ec:56:20:00:5e:da:ac:f2:a4:38:b7:7b:88:a0:94:
84:5d:ac:d5:2a:d0:d4:37:a9:e3:87:ec:90:03:84:af:5e:a8:
89:26:eb:68:e3:da:1b:f1:f8:81:9e:94:07:79:44:0a:6f:bb:
db:c2:c4:6b:9f:b6:85:9e:b8:b3:a1:07:9e:9d:a3:6c:52:f6:
68:95:32:b7:15:a6:e8:07:d7:d1:00:13:c9:16:ae:03:22:3b:
68:27:f6:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:05:09 2025 by rpki-client